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Raw Syslog Message 

Message: .snort: [...J ... (Classification: ... J 
(Priority: „.): (UDP> ~. -> 
Time Sep 16 14:SB:S4. Source: 10.4 1.49.63. 
FaciBty: Loca!2 



I Source mapping table from Sources, con I 



1 1; t t :•:"» . o . o . i ?.< 

200 lO.41.49.63 18 

2 C V 1 Q . -5 1 . -1 9 . t» 3 1 it 

act 10,*i.4r*.6S c:>:0 



4 r. oca ! 6 , w7 r. Wr;r is *; rs»% 
# l8-Local2, Snort syslog 

4- Lir.v.>. ;oc:->r »'t; cT.Vsrner 



Processor dispatching table from Main.config 

1*U SrOC» :Xr i> «? ? r c ^-<v ai':.r W"K1 
200 4 00 Rat«Proco9SO£ IDS 1/ firing 

10 1 401 5^-:c?r'.::'ia^:r 5TiX;;.- £ti ino 




String ftem: 
(timestamp - Sep 16 14:S8:54. 
source - 200. log Typo - 4O0, info 
.(Classification: ... ] [Priority: ...n 



Output: {ODBC OPC Server): 
(ootvar - J OS 1 /Firing", timestamp - 
Sep 16 14:56:54. msg - 
^Classification: ... } (Priority: ...J") 
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